JDK-8182556 : CertPathValidatorException: Path does not chain with any of the trust anchors
  • Type: Bug
  • Component: security-libs
  • Sub-Component: javax.net.ssl
  • Affected Version: 7
  • Priority: P3
  • Status: Closed
  • Resolution: Cannot Reproduce
  • Submitted: 2017-06-19
  • Updated: 2017-09-04
  • Resolved: 2017-09-04
Related Reports
Relates :  
Description
Submitter observes the following exception when we try to connect to a database with a jdbc driver using self-signed SSL certificates.  The issue is observed in JDK 7u71, but is not observed in 7u76.   Need assistance identifying the changeset which fixes the issue.

Caused by: java.security.cert.CertPathValidatorException: Path does not chain with any of the trust anchors
Comments
There may have been configuration issues with the submitter's environment. They also state that JDK-8021804 is a factor. They don't see any issues with latest 7u JDK.
04-09-2017

OK - so I've spotted that the cert in the client trust store and the one sent from the server don't seem to be the same! This should fail for 7u76 IMO - maybe it was a bug. JDK-8038623 may have caused a side effect. What does submitter see when running against the latest JDK 7u141 release ? cert in client truststore has these validity dates : Valid from Tue May 23 14:13:37 IST 2017 until Wed May 23 14:13:37 IST 2018 cert from server has this : From: Tue May 23 14:14:31 IST 2017, To: Wed May 23 14:14:31 IST 2018 I don't think we've the same cert then. 7u76 might be buggy. please have submitter test.
07-07-2017